Vulnerabilities > CVE-2021-3508 - Infinite Loop vulnerability in Pdfresurrect Project Pdfresurrect 0.22B

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
pdfresurrect-project
CWE-835

Summary

A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in get_xref_linear_skipped() in pdf.c via a crafted PDF file.

Vulnerable Configurations

Part Description Count
Application
Pdfresurrect_Project
1